How to add CA of internet web proxy
I'm using a centos 7 system as my master behind a corporate web proxy. How do I add the self-signed CA certificate of the proxy such that puppet will use and trust it?
I can access the puppetlabs modules using wget but not with 'puppet module'. The web proxy has a self-signed CA certificate which I have installed in the Red Hat ca bundle and the puppet-cacerts keystore. Using strace, I don't see puppet opening the keystore file before it spits out:
Error: Could not connect via HTTPS to https://forgeapi.puppetlabs.com Unable to verify the SSL certificate The certificate may not be signed by a valid CA The CA bundle included with OpenSSL may not be valid or up to date